Sign up for our weekly security newsletter

Fresh Zeus Sample, ‘Citadel’ Supports Dissatisfied Clients

According to Brian Krebs, he recently encountered one fresh strain of ZeuS the notorious Trojan stealing banking credentials, named 'Citadel.' Citadel's creators chiefly cater to consumers who don't feel happy about the support, which providers of other malware offer. Softpedia published this dated January 23, 2012.

A derivative of ZeuS, Citadel is canvassed via many hacker forums designed for members only as a SaaS (software-as-a-service) malware. It caters to people exasperated with creators of malicious software who make the resolution that they'd write their next code that'll fetch them greater enthusiasm and profit instead of supporting existing customers.

Krebs states that a particularly disturbing problem relates to end-users who've encountered developers that don't pay heed to their IM e-mails since the number of clients are many while the number of developer is only one, published Softpedia.

Notably, ever-since the source-code of ZeuS went public in 2011, Citadel maybe described as ZeuS' first prominent descendant. Its writers assert that many bug fixes are included in this latest ZeuS variant, such as total backing towards capturing credentials from targeted Web-surfers browsing inside Google Chrome. Moreover, this update has one packaged component, which's capable of intercepting and sending movie files of the victimized end-user's computer screen operations.

Significantly, Citadel owners have a commercial advantage over the malware developers who frequently miss on ensuring that their programs' security flaws are patched so that their clients will receive and benefit from an enhanced edition.

What's more, customers may even submit personal requests in a so-called social-networking site particularly created for malware authors as also their consumers.

Alongside these, Citadel CRM Online Retail lets Web-surfers become involved within the Trojan's security flaw reports as well as other software inaccuracies. The technical support, which monitors all tickets, dispatches timely reply for queries asked. Thus there isn't any need for contacting the author through Jabber alternatively ICQ.

Another specialty of Citadel is that suppose it spots the victim's computer as utilizing a Ukrainian or Russian keyboard, it'll make itself inactive thus freeing developers from hazards: authorities in these countries will most probably not pursue Citadel's developer in the absence of any local victims.